CVE-2011-2145

CWE-2645 documents5 sources
Severity
6.3MEDIUM
EPSS
0.1%
top 77.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Vmware ESXVmware EsxiVmware Fusion+2 more
Timeline
PublishedJun 6
Latest updateMay 17

Description

mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1, when a Solaris or FreeBSD guest OS is used, allows guest OS users to modify arbitrary guest OS files via unspecified vectors, related to a "procedural error."

CVSS vector

AV:L/AC:M/C:N/I:C/A:CExploitability: 3.4 | Impact: 9.2

Affected Packages6 packages

NVDvmware/esxi3.5, 4.0, 4.1+2
NVDvmware/fusion3.1, 3.1.1, 3.1.2+2
NVDvmware/player4 versions+3
NVDvmware/workstation7.1.1, 7.1.2, 7.1.3+2
NVDvmware/esx4 versions+3

Patches

Patch: www.vmware.comPatch: www.vmware.com

🔴Vulnerability Details

3
GHSA
GHSA-vpj8-4chw-6r65: mount2022-05-17
OSV
CVE-2011-2145: mount2011-06-06
CVEList
CVE-2011-2145: mount2011-06-06

📋Vendor Advisories

1
Debian
CVE-2011-2145: open-vm-tools - mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7...2011
CVE-2011-2145 (MEDIUM CVSS 6.3) | mount.vmhgfs in the VMware Host Gue | cvebase.io